Linux Distros Unpatched Vulnerability : CVE-2014-9622

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Eval injection vulnerability in xdg-utils 1.1.0 RC1, when no supported desktop environment is identified, allows context-dependent attackers to execute arbitrar...

Debian: Security Advisory (DLA-217-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE CVE-2014-9622

Eval injection vulnerability in xdg-utils 1.1.0 RC1, when no supported desktop environment is identified, allows context-dependent attackers to execute arbitrary code via the URL argument to xdg-open...

Advisory ROSA-SA-2021-2001

Software: xdg-utils 1.1.0 OS: Cobalt 7.9 CVE-ID: CVE-2014-9622 CVE-Crit: HIGH CVE-DESC: Eval injection vulnerability in xdg-utils 1.1.0 RC1 in the absence of a supported desktop environment allows context-dependent attackers to execute arbitrary code via the URL argument to xdg-open. CVE-STATUS:...

SUSE: Security Advisory (SUSE-SU-2015:0271-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

GLSA-201701-09 : Xdg-Utils: Command injection

The remote host is affected by the vulnerability described in GLSA-201701-09 Xdg-Utils: Command injection An eval injection vulnerability was discovered in Xdg-Utils. Impact : A context-dependent attacker could execute arbitrary code via the URL argument to xdg-open. Workaround : There is no know...

[SECURITY] [DLA 217-1] xdg-utils security update

The two below CVE issues have recently been fixed in Debian squeeze-lts: CVE-2014-9622 John Houwer discovered a way to cause xdg-open, a tool that automatically opens URLs in a users preferred application, to execute arbitrary commands remotely. CVE-2015-1877 Jiri Horner discovered a way to cause...

DLA-217-1 xdg-utils - security update

Bulletin has no description...

MGASA-2015-0058 Updated xdg-utils packages fix CVE-2014-9622

Updated xdg-utils package fixes security vulnerability: John Houwer discovered a way to cause xdg-open, a tool that automatically opens URLs in a user's preferred application, to execute arbitrary commands remotely CVE-2014-9622. The xdg-utils has been updated to a much more recent snapshot, and...

Updated xdg-utils packages fix CVE-2014-9622

Updated xdg-utils package fixes security vulnerability: John Houwer discovered a way to cause xdg-open, a tool that automatically opens URLs in a user's preferred application, to execute arbitrary commands remotely CVE-2014-9622. The xdg-utils has been updated to a much more recent snapshot, and...

openSUSE Security Update : xdg-utils (openSUSE-SU-2015:0191-1)

This update fixes the following security issue : - Fix Remote code execution in xdg-open due to bad quotes handling CVE-2014-9622 bnc913676. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

CVE-2014-9622

Eval injection vulnerability in xdg-utils 1.1.0 RC1, when no supported desktop environment is identified, allows context-dependent attackers to execute arbitrary code via the URL argument to xdg-open...

CVE-2014-9622

CVE-2014-9622 covers an eval-injection in xdg-utils 1.1.0 RC1 where, if no supported desktop environment is identified, an attacker can cause xdg-open to execute arbitrary commands via the URL argument. The vulnerability is treated as a remote-code-execution risk affecting Linux distros, with CVS...

[SECURITY] [DSA 3131-1] xdg-utils security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3131-1 [email protected] http://www.debian.org/security/ Michael Gilbert January 18, 2015 http://www.debian.org/security/faq -...